Phishing with Empathy: Running Phishing Campaigns without Making Enemies and Irritating People

Running phishing simulations on campus can be complicated. At worst, you risk damaging your personal brand and that of the information security function. What if you could run a phishing simulation that maximizes all the value that you hope to get from these simulations while minimizing potential bad outcomes? In this talk, we’ll go through the lessons we’ve learned from running successful phishing campaigns and focus on how to approach this work with empathy and a positive attitude to boost your institution's security IQ.